RX250305 - OpenMosixView : Multiple Race conditions - advisory and exploit

/ | | // / / / / | | / | / | |/ //|| / / research / . | REXOTECdotCOM | |=------= ADV RX250305 - OpenMosixView : Multiple Race conditions ------=| | | |=--- - INFORMATION ---------------------------------------------------------------------| VulnDiscovery: 2004/12/21 Release Date : 2005/03/25...

Broadcast memory corruption in Soldier of Fortune II 1.03

Luigi Auriemma Application: Soldier of Fortune II http://sof2.ravensoft.com Versions: = 1.03 gold Platforms: Windows, Linux and MacOS Bug: memory corruption Exploitation: remote, versus server and clients broadcast Date: 23 November 2004 Author: Luigi Auriemma e-mail: [email protected] web:...

linux/x86 shared memory exec 50 bytes

Exploit for linux/x86 platform in category shellcode ===================================== linux/x86 shared memory exec 50 bytes ===================================== / email protected - http://www.nopninjas.com Platform: Linux x86 Length: 50 bytes - This shellcode connects to the shared memory...

JShop Input Validation Hole in 'page.php' Permits Cross-Site Scripting Attacks

Indonesia Security Development Team Indohack http://indohack.sourceforge.net/drponidi =========================================================================== Security Advisory Advisory Name: JShop Input Validation Hole in 'page.php' Permits Cross-Site Scripting Attacks Platform: Linux Any, UN...

Subversion 1.0.2 Date Overflow

No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

DoS in Rsniff 1.0

Luigi Auriemma Application: RSniff Remote Sniff http://www.cse.sc.edu/madamanc/projects.html Versions: 1.0 Platforms: Linux Bug: Denial of Service Risk: low Exploitation: remote Date: 09 Apr 2004 Author: Luigi Auriemma e-mail: [email protected] web: http://aluigi.altervista.org 1 Introduction...

PT-2004-2988 · Ca · Etrust Inoculateit

Name of the Vulnerable Software and Affected Versions: eTrust InoculateIT for Linux version 6.0 Description: The issue concerns insecure permissions for multiple files and directories, including the application's registry and tmp directories. This allows local users to delete, modify, or examine...

----------========== OPEN3S-2003-08-08-eng-informix-onedcu ==========----------

----------========== OPEN3S-2003-08-08-eng-informix-onedcu ==========---------- Title: Local Vulnerability in IBM Informix IDSv9.40 onedcu binary Date: 08-08-2003 Platform: Only tested in Linux but can be exported to others. Impact: Users with exec perm over ./bin/onedcu can create files with 666...

X-Chat 2.0.6 - Remote Denial of Service

X-Chat 2.0.6 - Remote Denial of Service source: https://www.securityfocus.com/bid/9217/info It has been reported that X-Chat may be prone to a remote denial of service vulnerability that may allow an attacker to crash the client by sending a malicious 'DDC SEND' request. X-Chat version 2.0.6...

X-Chat 2.0.6 - Remote Denial of Service

source: https://www.securityfocus.com/bid/9217/info It has been reported that X-Chat may be prone to a remote denial of service vulnerability that may allow an attacker to crash the client by sending a malicious 'DDC SEND' request. X-Chat version 2.0.6 running on a Linux platform has been reporte...

_BSSADV-0000.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Bugtraq Security Systems, Incorporated www.bugtraq.org Security Advisory Advisory Name: Multiple Issues in Applied Watch Command Center Release Date: 11/27/2003 Application: Applied Watch Platform: Linux IA32 Linux sparc Linux sparc64 Linux hppa Linux...

Local Vulnerability in IBM DB2 7.1 db2job binary

Title: Local Vulnerability in IBM DB2 7.1 db2job binary Date: 27-07-2003 Platform: Only tested in Linux but can be exported to others. Impact: Users with exec perm over ./db2as/sqllib/adm/db2job can create files with 770 mode and owned by root. Author: Juan Manuel Pascual Escriba [email protected]...

mnoGoSearch 3.1.20 Remote Command Execution Exploit

Exploit for linux platform in category remote exploits =================================================== mnoGoSearch 3.1.20 Remote Command Execution Exploit =================================================== !/usr/bin/perl reloaded Remote Exploit for mnoGoSearch 3.1.20 that performs remote...

Apache 2.0.44 (Linux) - Remote Denial of Service

/ th-apachedos.c Remote Apache DoS exploit ------------------------- Written as a poc for the: This program sends 8000000 \n's to exploit the Apache memory leak. Works from scratch under Linux, as opposed to apache-massacre.c . Daniel Nyström - www.telhack.tk - th-apachedos.c / include include...

PoPToP < 1.1.3-b3/1.1.3-20030409 - Negative Read Overflow (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Poptop...

typo3 issues

hola, ... [email protected]/Martin Eiszner ===================== Security REPORT TYPO3 ===================== this document: http://www.websec.org/adv/typo3.html Product: Typo3 Version 3.5b5 / Earlier versions are possibly vulnerable too Vendor: Typo3 http://www.typo3.com Vendor-Status:...

Lonerunner Zeroo HTTP Server 1.5 - Remote Buffer Overflow

source: https://www.securityfocus.com/bid/6190/info Zeroo HTTP server is a freely available, open source web server. It is available for the Linux and Microsoft Windows platforms. It has been reported that Zeroo HTTP server does not sufficiently check bounds on some requests. This occurs when a...

AlsaPlayer 0.99.71 - Local Buffer Overflow

// source: https://www.securityfocus.com/bid/5767/info Alsaplayer is a PCM player that utilizes the ALSA libraries and drivers. It is availabe for Linux and Unix platforms. A vulnerability has been discovered in Alsaplayer. By specifying an overly long "add-on path", it is possible for an attacke...

BRU 17.0 - XBRU Insecure Temporary File

BRU 17.0 - XBRU Insecure Temporary File source: https://www.securityfocus.com/bid/5708/info BRU is a backup and restore utility distributed by The Tolis Group. This problem affects the utility on the Linux platform. xbru does not properly check for the existence of temporary files prior to...

BRU 17.0 - XBRU Insecure Temporary File

source: https://www.securityfocus.com/bid/5708/info BRU is a backup and restore utility distributed by The Tolis Group. This problem affects the utility on the Linux platform. xbru does not properly check for the existence of temporary files prior to execution. Because of this, it is possible for...